$ rpki-client -vvf rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.mft File: rtgBDeTSP_TQ-QBbrJJb23898wo.mft (raw, json) Hash identifier: fDQBPLZWZxWjSKhVLVnpKbC1VZv1L7Bwrk/zPhadSlQ= Subject key identifier: 57:DF:F1:8D:F5:17:DB:FC:AE:26:97:A8:EB:AF:D1:AA:17:76:90:08 Authority key identifier: AE:D8:01:0D:E4:D2:3F:F4:D0:F9:00:5B:AC:92:5B:DB:7F:3D:F3:0A Certificate issuer: /CN=A91651CF/serialNumber=AED8010DE4D23FF4D0F9005BAC925BDB7F3DF30A Certificate serial: 67 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.mft Manifest number: 67 Signing time: Fri 25 Apr 2025 05:56:43 +0000 Manifest this update: Fri 25 Apr 2025 05:56:43 +0000 Manifest next update: Fri 02 May 2025 05:56:43 +0000 Files and hashes: 1: rtgBDeTSP_TQ-QBbrJJb23898wo.crl (hash: CPB5T5CPsYsHI2RjHbt1u5UhewKf4giGtPnTQzZyjo8=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.crl rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 02 May 2025 05:56:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 103 (0x67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91651CF, serialNumber=AED8010DE4D23FF4D0F9005BAC925BDB7F3DF30A Validity Not Before: Apr 25 05:56:43 2025 GMT Not After : May 2 05:56:43 2025 GMT Subject: CN=680b241b-67d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:04:93:92:e6:60:13:0b:1d:1d:d6:68:78:70: a8:e7:9d:6f:8b:80:ea:8a:8d:26:6e:16:5f:49:e0: 9a:fd:1b:7c:56:7a:68:9d:37:af:10:09:63:d3:12: 81:ff:25:5a:66:a2:93:e3:05:6f:96:4d:d4:55:bc: cb:42:7f:4a:d2:92:76:14:f7:4f:25:02:e2:7d:60: cb:15:b8:7e:0d:47:64:86:04:5f:73:d0:96:e7:11: 64:5d:20:cc:b9:fd:4b:49:37:a3:fc:ad:59:75:4f: d4:3a:ae:96:05:53:f0:76:63:62:2d:cf:95:da:63: b4:c8:86:bf:b3:5b:24:1a:79:52:bc:18:41:0f:52: 07:bc:59:30:e1:59:9f:28:1b:bc:66:fa:2b:b1:aa: 2d:06:03:df:d8:c9:1e:b1:09:ce:3d:09:3d:2e:8f: 9d:4a:7e:33:20:bd:31:de:8d:6b:e3:44:b1:12:d3: 78:55:d9:35:87:b8:82:9e:72:4d:09:c7:27:e8:d9: a2:fc:50:4f:ab:2f:49:13:8e:27:ff:48:4e:3f:27: a1:90:1a:39:4d:6d:53:b8:04:19:27:3a:82:78:61: 29:12:a1:04:3a:e4:f9:b0:b7:11:04:63:ff:f3:67: c8:56:37:6d:aa:4d:32:8d:10:04:04:83:55:4d:f0: 2d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:DF:F1:8D:F5:17:DB:FC:AE:26:97:A8:EB:AF:D1:AA:17:76:90:08 X509v3 Authority Key Identifier: keyid:AE:D8:01:0D:E4:D2:3F:F4:D0:F9:00:5B:AC:92:5B:DB:7F:3D:F3:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/rtgBDeTSP_TQ-QBbrJJb23898wo.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91651CF/2749C7BE86D711EF854DD47BC4F9AE02/rtgBDeTSP_TQ-QBbrJJb23898wo.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:4e:7f:b0:66:d3:40:1e:99:3d:70:b9:5e:d1:61:51:e6:16: 86:47:fb:bb:a0:2b:0f:86:6d:63:5f:5c:b6:c7:89:8d:f6:3e: 1d:22:88:db:bc:90:a7:f7:56:7f:c0:69:1b:bf:1c:01:2b:cd: 25:d1:8b:bf:3e:bf:b6:bd:f9:27:1a:64:15:d8:ce:b8:aa:49: d2:1b:04:65:56:d8:6c:cc:51:7a:29:e5:e1:74:ae:2f:c3:f2: e6:c2:70:84:43:da:63:cf:77:98:95:c4:78:8e:e4:f8:70:9b: 5e:03:fd:74:1a:c0:ea:c9:12:8f:b6:8e:08:86:bd:9c:8c:18: 64:00:9f:ce:22:9e:98:a4:4a:e7:4c:70:19:94:de:4a:75:4c: ee:98:1a:c6:75:b1:d5:23:0c:1a:be:83:99:1f:2a:ab:a7:0b: ce:44:f9:30:3d:bf:ff:80:bf:9d:62:c5:7c:60:3c:d1:92:9f: 9f:2c:fd:df:65:6b:16:09:5e:d1:8c:dd:a3:64:7a:8f:6b:ab: 7a:7a:27:b9:b3:a9:50:63:46:87:e6:00:21:f2:9e:2b:71:63: f6:da:8b:e6:71:88:36:df:95:ed:84:6b:2b:36:f5:4d:bb:c5: 7c:bf:de:82:56:3c:14:f7:c2:f0:e2:50:6b:7a:d7:93:16:e7: 1d:61:a8:ff -----BEGIN CERTIFICATE----- MIIFgzCCBGugAwIBAgIBZzANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTE2 NTFDRjExMC8GA1UEBRMoQUVEODAxMERFNEQyM0ZGNEQwRjkwMDVCQUM5MjVCREI3 RjNERjMwQTAeFw0yNTA0MjUwNTU2NDNaFw0yNTA1MDIwNTU2NDNaMBgxFjAUBgNV BAMTDTY4MGIyNDFiLTY3ZDMwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDhBJOS5mATCx0d1mh4cKjnnW+LgOqKjSZuFl9J4Jr9G3xWemidN68QCWPTEoH/ JVpmopPjBW+WTdRVvMtCf0rSknYU908lAuJ9YMsVuH4NR2SGBF9z0JbnEWRdIMy5 /UtJN6P8rVl1T9Q6rpYFU/B2Y2Itz5XaY7TIhr+zWyQaeVK8GEEPUge8WTDhWZ8o G7xm+iuxqi0GA9/YyR6xCc49CT0uj51KfjMgvTHejWvjRLES03hV2TWHuIKeck0J xyfo2aL8UE+rL0kTjif/SE4/J6GQGjlNbVO4BBknOoJ4YSkSoQQ65PmwtxEEY//z Z8hWN22qTTKNEAQEg1VN8C3jAgMBAAGjggKoMIICpDAdBgNVHQ4EFgQUV9/xjfUX 2/yuJpeo66/Rqhd2kAgwHwYDVR0jBBgwFoAUrtgBDeTSP/TQ+QBbrJJb23898wow DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1MUNGLzI3NDlDN0JFODZE NzExRUY4NTRERDQ3QkM0RjlBRTAyL3J0Z0JEZVRTUF9UUS1RQmJySkpiMjM4OTh3 by5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjNBMjRGMjAxRDY2MTFFMjhBQzg4MzdDNzJG RDFGRjIvcnRnQkRlVFNQX1RRLVFCYnJKSmIyMzg5OHdvLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgcUGCCsGAQUFBwELBIG4MIG1MH4GCCsGAQUFBzAL hnJyc3luYzovL3Jwa2kuYXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MTY1 MUNGLzI3NDlDN0JFODZENzExRUY4NTRERDQ3QkM0RjlBRTAyL3J0Z0JEZVRTUF9U US1RQmJySkpiMjM4OTh3by5tZnQwMwYIKwYBBQUHMA2GJ2h0dHBzOi8vcnJkcC5h cG5pYy5uZXQvbm90aWZpY2F0aW9uLnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALlOf7Bm00AemT1wuV7RYVHmFoZH+7ugKw+GbWNfXLbHiY32Ph0iiNu8 kKf3Vn/AaRu/HAErzSXRi78+v7a9+ScaZBXYzriqSdIbBGVW2GzMUXop5eF0ri/D 8ubCcIRD2mPPd5iVxHiO5Phwm14D/XQawOrJEo+2jgiGvZyMGGQAn84inpikSudM cBmU3kp1TO6YGsZ1sdUjDBq+g5kfKqunC85E+TA9v/+Av51ixXxgPNGSn58s/d9l axYJXtGM3aNkeo9rq3p6J7mzqVBjRofmACHynitxY/bai+ZxiDbfle2Eays29U27 xXy/3oJWPBT3wvDiUGt615MW5x1hqP8= -----END CERTIFICATE-----Generated at Sat Apr 26 14:16:01 2025 by rpki-client